fe1b33f307
hard cases make bad law
16 lines
337 B
Text
16 lines
337 B
Text
#!/usr/bin/nft -f
|
|
|
|
flush ruleset
|
|
|
|
table ip nat {
|
|
chain prerouting {
|
|
type nat hook prerouting priority 0; policy accept;
|
|
}
|
|
|
|
# for all packets to WAN, after routing, replace source address with primary IP of WAN interface
|
|
chain postrouting {
|
|
type nat hook postrouting priority 100; policy accept;
|
|
oifname "ppp0" masquerade
|
|
}
|
|
}
|
|
|